shorewall_code/Shorewall2/releasenotes.txt

Shorewall 2.3.0

-----------------------------------------------------------------------
Problems corrected in version 2.3.0

None.

-----------------------------------------------------------------------
New Features in version 2.3.0

1) Shorewall 2.3.0 supports the 'cmd-owner' option of the owner match
   facility in Netfilter. Like all owner match options, 'cmd-owner' may
   only be applied to traffic that originates on the firewall.

   The syntax of the USER/GROUP column in the following files has been
   extended:

	/etc/shorewall/accounting
	/etc/shorewall/rules
	/etc/shorewall/tcrules
	/usr/share/shorewall/action.template

   To specify a command, prefix the command name with "+".

   Examples:

	+mozilla-bin		#The program is named "mozilla-bin"
	joe+mozilla-bin		#The program is named "mozilla-bin" and
				#is being run by user "joe"
	joe:users+mozilla-bin	#The program is named "mozilla-bin" and
				#is being run by user "joe" with 
				#effective group "users".

   Note that this is not a particularly robust feature and I would
   never advertise it as a "Personal Firewall" equivalent. Using
   symbolic links, it's easy to alias command names to be anything you
   want.
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`Shorewall 2.3.0`
Add UPnP support git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2031 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-04-08 20:07:58 +02:00
			`-----------------------------------------------------------------------`
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`Problems corrected in version 2.3.0`
Add UPnP support git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2031 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-04-08 20:07:58 +02:00
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`None.`
Improve error message git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2039 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-04-11 01:08:21 +02:00
Shorewall 2.0.0 Alpha 1 git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1109 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2004-01-31 20:06:39 +01:00			`-----------------------------------------------------------------------`
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`New Features in version 2.3.0`
Implement OpenVPN TCP Support git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1828 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2004-12-14 17:11:49 +01:00
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`1) Shorewall 2.3.0 supports the 'cmd-owner' option of the owner match`
			`facility in Netfilter. Like all owner match options, 'cmd-owner' may`
			`only be applied to traffic that originates on the firewall.`
Implement OpenVPN TCP Support git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1828 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2004-12-14 17:11:49 +01:00
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`The syntax of the USER/GROUP column in the following files has been`
			`extended:`
Implement OpenVPN TCP Support git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1828 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2004-12-14 17:11:49 +01:00
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`/etc/shorewall/accounting`
			`/etc/shorewall/rules`
			`/etc/shorewall/tcrules`
			`/usr/share/shorewall/action.template`
Shorewall 2.2.0-RC1 git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1837 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2004-12-19 17:52:13 +01:00
Replace '/' by '+' in cmd-owner implementation git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2079 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:47:34 +02:00			`To specify a command, prefix the command name with "+".`
Shorewall 2.2.0-RC1 git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1837 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2004-12-19 17:52:13 +01:00
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`Examples:`
Shorewall 2.2.0-RC1 git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1837 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2004-12-19 17:52:13 +01:00
Replace '/' by '+' in cmd-owner implementation git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2079 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:47:34 +02:00			`+mozilla-bin #The program is named "mozilla-bin"`
			`joe+mozilla-bin #The program is named "mozilla-bin" and`
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`#is being run by user "joe"`
Replace '/' by '+' in cmd-owner implementation git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2079 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:47:34 +02:00			`joe:users+mozilla-bin #The program is named "mozilla-bin" and`
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`#is being run by user "joe" with`
			`#effective group "users".`
Shorewall 2.2.0-RC1 git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1837 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2004-12-19 17:52:13 +01:00
Add support for --cmd-owner git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-05-03 23:33:09 +02:00			`Note that this is not a particularly robust feature and I would`
			`never advertise it as a "Personal Firewall" equivalent. Using`
			`symbolic links, it's easy to alias command names to be anything you`
			`want.`
Add module list to status output git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1881 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-01-03 18:27:46 +01:00
Add AllowInvalid Action; expand port range opened by AllowTrcrt git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1893 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb 2005-01-10 17:36:08 +01:00